NET0230 – Network element is not password protected.
Details Network devices must be password protected. Network access control mechanisms interoperate to prevent unauthorized access and to enforce the...
- Home
- Security Hardening
- DISA STIG Cisco L2 Switch V8R27
DISA STIG Cisco L2 Switch V8R27
NET0240 – Devices exist with standard default passwords.
Details Network devices must not have any default manufacturer passwords. Network devices not protected with strong password schemes provide the...NET0340 – Network devices must display the DoD-approved logon banner warning – ‘banner login’
Details All network devices must present a DoD-approved warning banner prior to a system administrator logging on. The banner should...NET0340 – Network devices must display the DoD-approved logon banner warning – ‘banner motd’
Details All network devices must present a DoD-approved warning banner prior to a system administrator logging on. The banner should...NET0405 – A service or feature that calls home to the vendor must be disabled.
Details Call home services or features will routinely send data such as configuration and diagnostic information to the vendor for...NET0433 – The device is not authenticated using a AAA server – ‘aaa authentication login’
Details Network devices must use two or more authentication servers for the purpose of granting administrative access. The use of...NET0600 – Passwords are viewable when displaying the config.
Details The network element must be configured to ensure passwords are not viewable when displaying configuration information. Many attacks information...NET0700 – Operating system is not at a current release level.
Details The network element must be running a current and supported operating system with all IAVMs addressed. Network devices that...NET0720 – TCP and UDP small server services are not disabled – ‘service tcp-small-servers’
Details Network devices must have TCP and UDP small servers disabled. Cisco IOS provides the ‘small services’ that include echo,...NET0720 – TCP and UDP small server services are not disabled – ‘service udp-small-servers’
Details Network devices must have TCP and UDP small servers disabled. Cisco IOS provides the ‘small services’ that include echo,...